From 1a3664664af81fc34ec31464fc7a7165ee8a42b7 Mon Sep 17 00:00:00 2001 From: Laura Arjona Reina Date: Sun, 24 Jul 2016 17:46:56 +0000 Subject: Add info about how to verify the downloads (incomplete/inconsistent, see the inline comments!) CVS version numbers english/download/index.wml: 1.1.2.2 -> 1.1.2.3 --- english/download/index.wml | 38 ++++++++++++++++++++++++++++++++------ 1 file changed, 32 insertions(+), 6 deletions(-) diff --git a/english/download/index.wml b/english/download/index.wml index 96ff54ad838..1ff31ffba32 100644 --- a/english/download/index.wml +++ b/english/download/index.wml @@ -88,8 +88,6 @@ contains detailed installation instructions. - -
### this column needs to be centered @@ -98,13 +96,41 @@ contains detailed installation instructions. # here a fancy graphic about checksums / padlock etc. -

Verify your download

+

Verify your download

+ # this is taken from /english/CD/index +

+ Official CD releases are signed so that you can verify they are authentic, + and that your download has not been corrupted. +

+ + #these needs work: + # which is the folder where people downloaded the image? + # maybe we should offer two downloads above: the image and the checksum file... +

- (simple rationale and instructions, - link to page with more details) + Look for the "SHA512SUMS" file in the same directory + where you downloaded the image, it contains checksums of the images. + + These checksum files are also signed, see the SHA512SUMS.sign file too. +

+ + #these needs work: + # which "checksum verifier tool" to use? + # maybe we should complete english/CD/verify to include instructions + # and links to checksum verifier tools for several operating systems. + +

+ With these files and a checksum verifier tool, you can check + that the image checksum matches that expected from the checksum file; + and that the checksum file has not been tampered with. +

+ +

+ For more information about how to do these steps, + read the verification guide.

-
+
-- cgit v1.2.3